BT-339 - Network EngineerLocation: Chantilly, VA (fully on-site, no remote option)
**Please do NOT apply if you do not have an active Poly clearance. Those without a Poly will not be considered.**Work Requirements- The Candidate shall manage security and performance of virtual desktop infrastructure (VDI), to include networking components, administering firewall policies, VPNs, network segmentation, and endpoint policy enforcement.
- The Candidate shall ensure network and endpoint systems are secure, efficient, and compliant.
- The Candidate shall manage Palo Alto PA-3430, Cisco Firepower 2130s, and Nexus switches and administer and optimize firewall and network switch configurations.
- The Candidate shall configure OpenVPN/IPsec-based VPNs for secure remote access in a VDI environment.
- The Candidate shall segment networks using VLANs and Access Control Lists in a Zero Trust model. The Candidate shall implement network segmentation strategies to enhance security and minimize the attack surface.
- The Candidate shall oversee endpoint provisioning, patching, and hardening via ManageEngine; to include managing the lifecycle of endpoint devices, provisioning, patching, and hardening to ensure they are secure and up-to-date.
- The Candidate shall administer Windows 11, Linux, and BlueStacks.
- The Candidate shall manage and support endpoint operating systems and Android emulators to ensure they meet performance and security standards.
- The Candidate shall enforce GPOs and AD-integrated access controls.
- The Candidate shall implement and manage Group Policy Objects and Active Directory integrated access controls to enforce security policies and user permissions.
- The Candidate shall develop and deploy automation scripts to streamline policy enforcement and system management tasks.
Required Skills and Demonstrated Experience- Demonstrated hands on experience with firewall administration.
- Demonstrated experience with Network Access Control.
- Demonstrated experience with Access Controls.
- Demonstrated experience with VPN tunneling.
- Demonstrated experience with endpoint security and mobile emulation environments.
- Demonstrated experience in securing and managing endpoint devices, including mobile emulation environments such as BlueStacks.
Highly Desired Skills and Demonstrated Experience- Demonstrated experience collaborating with cybersecurity and VDI teams or otherwise.
- Demonstrated experience providing training and support.
- Demonstrated experience developing and maintaining network and endpoint security policies and procedures
- Demonstrated experience conducting regular security assessments.
- Demonstrated experience implementing Zero Trust security model.
- Demonstrated experience engaging in continuous improvement related to identifying opportunities for enhancing network and endpoint security measures and implement innovative solutions to improve overall security posture
- Certifications: CCNP Security, PCNSE, ITIL v4, Microsoft MCP, or CompTIA Linux+